0583c289bd558fd79ef327dc1c93e75b63856b408f9d3354bb73d99b334297ab

Sharing

Copy URL Twitter E-mail

General

Target

0583c289bd558fd79ef327dc1c93e75b63856b408f9d3354bb73d99b334297ab
Size

79KB
MD5

02c6b73466feba846750b64152cbd268
SHA1

2eb03c46d54a16b8e5b458ff75f6f799db894f6c
SHA256

0583c289bd558fd79ef327dc1c93e75b63856b408f9d3354bb73d99b334297ab
SHA512

aaebdf14c50db6d5d7de9deb439ec67fac7e1c35f1c04462ab06f9bb788c60b933143739ae334b351a935721b8ab300084aa90e02f55dc439b5077f375d2a9f8
SSDEEP

1536:mjGx6DXOpiGu2518LO6Q57u5op19MkUUvrNTTSiY7vO:GGxeXOpiGu252FJbavp3e

Score

N/A

Malware Config

Signatures

Files

0583c289bd558fd79ef327dc1c93e75b63856b408f9d3354bb73d99b334297ab
.exe windows x86

02595dd4e67f6b9255840c04dd134d48

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

xpcom

NS_GetServiceManager
NS_StringGetData
NS_InitXPCOM2
NS_ShutdownXPCOM
NS_UTF16ToCString
NS_CStringToUTF16
NS_CStringContainerInit2
NS_CStringContainerFinish
NS_CStringSetData
NS_CStringContainerInit
NS_StringContainerInit2
NS_StringContainerFinish
NS_StringContainerInit
NS_CStringGetData

mozalloc

moz_free

msvcr90

_crt_debugger_hook
_controlfp_s
_invoke_watson
putchar
vprintf
printf
exit
strcmp
memcmp
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
__initenv
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common

kernel32

IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02595dd4e67f6b9255840c04dd134d48

Headers

DLL Characteristics

File Characteristics

Imports

xpcom

mozalloc

msvcr90

kernel32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 64KB - Virtual size: 65KB

.rsrc Size: 1024B - Virtual size: 688B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 64KB - Virtual size: 65KB

.rsrc
Size: 1024B - Virtual size: 688B

.reloc
Size: 1KB - Virtual size: 1KB